advapi.exe – Here is the scoop on AdvApi as it pertains to computer network security. The big question: what is advapi.exe and is it spyware, a trojan and if so, how do I get rid of AdvApi?
advapi.exe (AdvApi) – Details
The process known as Advapi.exe is installed and started by a variant of the Netdevil virus (also known as netdevil12 and netdevil1.2). It should not be confused with the ‘Advapi32′ process (notice the ’32’).
advapi.exe is considered to be a security risk, not only because antivirus programs flag AdvApi as a virus, but also because a number of users have complained about its performance.
AdvApi is likely a virus and as such, presents a serious vulnerability which should be fixed immediately! Delaying further investigation of advapi.exe may cause serious harm to your system and will likely cause a number of problems, such as slow performance, loss of data or leaking private information to websites.
advapi.exe is considered to be a security risk, not only because antivirus programs flag AdvApi as a trojan, but also because other sites consider it a Trojan as well.
AdvApi is likely a Trojan and as such, presents a serious vulnerability which should be fixed immediately! Delaying further investigation of advapi.exe may cause serious harm to your system and will likely cause a number of problems, loss of data, loss of control or leaking private information.
You should take our Firewall Test and look at your Digital Footprint to make sure your system is not giving away valuable information or has open ports on your firewall that may allow attackers to compromise your computer; these tests are completely free.
Whenever you have a concern about a file like advapi.exe, feel free to leave a comment (you’ll find the comment section at the bottom of this page); we’ll research your process or dll file and post the results to the site.
We do our best to update process information as often as possible but inaccuracies may still exist; a prime example would be a virus that is named after a legitimate file and perhaps AdvApi is such a case. If you find an inaccuracy or have information that will help others, please, don’t hesitate to leave a comment!
ADVAPI.EXE – Disclaimer
Every attempt has been made to provide you with the correct information for advapi.exe or ADVAPI. Many spyware / malware programs use filenames of usual, non-malware programs. If we have included information about advapi.exe that is inaccurate, we would greatly appreciate your help by leaving a comment with the correct information below and we’ll do our best to correct it.
You should verify the accuracy of information we provided about advapi.exe.
Hi Paul, i have the identical problem.
I have read this post:
Paul mastrangelo says:
October 19, 2010 at 4:56 pm
I see three 539 events with a logon type of 5 and logon process of Advapi, authentication package of Negotiate, reason of Unknown user name or bad password. this is followed by a 539 event of logon type 3 with my account locked out. How can i confirm this is a virus or legitimate service starting with an old pin?
i have the same and identical problem, this is a virus?
By Snup
I see three 539 events with a logon type of 5 and logon process of Advapi, authentication package of Negotiate, reason of Unknown user name or bad password. this is followed by a 539 event of logon type 3 with my account locked out. How can i confirm this is a virus or legitimate service starting with an old pin?